$ rpki-client -vvf rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.mft File: tI5Ac7gQvPnHlIGcgP3nHVPy3iw.mft (raw, json) Hash identifier: ZQtUSRsq5LubNiN7+q3d8aqJkF1Xt5KQMBKabOQSM/A= Subject key identifier: 6D:1F:78:41:12:ED:48:63:73:AE:B4:D6:6F:41:71:24:45:D5:8E:53 Authority key identifier: B4:8E:40:73:B8:10:BC:F9:C7:94:81:9C:80:FD:E7:1D:53:F2:DE:2C Certificate issuer: /CN=A9160C95/serialNumber=B48E4073B810BCF9C794819C80FDE71D53F2DE2C Certificate serial: 0514 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.mft Manifest number: 050C Signing time: Fri 03 May 2024 01:15:38 +0000 Manifest this update: Fri 03 May 2024 01:15:38 +0000 Manifest next update: Fri 10 May 2024 01:15:38 +0000 Files and hashes: 1: tI5Ac7gQvPnHlIGcgP3nHVPy3iw.crl (hash: yDKDGfXGC62DRyUv7FACs/wdKQEgB53+DQr5pgnb4uE=) 2: 3C2408105CBF11ECACDFE47BC4F9AE02.roa (hash: 5uGQKQHacdIz6+gIYb0KhNuQPFZrw2PyFjSKiH2Athc=) 3: B3DED5C6BAC911EB8533B615C4F9AE02.roa (hash: jXDp4XiCvpV4wY49c46QBfx2cr7QhdJZL2oEG7fy8Gs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.crl rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 00:26:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1300 (0x514) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160C95/serialNumber=B48E4073B810BCF9C794819C80FDE71D53F2DE2C Validity Not Before: May 3 01:15:38 2024 GMT Not After : May 10 01:15:38 2024 GMT Subject: CN=66343aba-f372 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:b7:9b:03:45:fa:4f:80:95:4d:8f:79:c1:41: 1b:7c:7a:03:13:7c:9b:44:90:83:00:42:2f:d7:f7: 93:a5:70:60:c7:96:db:37:c5:b3:d8:81:d7:58:2c: e2:a8:74:91:49:da:d7:7e:f9:d0:f4:8f:31:5e:db: 8d:02:a2:50:7b:35:42:f6:7c:ff:da:1b:f0:e7:a6: f8:02:5c:76:c8:4f:5d:fa:31:06:67:3f:7e:d0:cd: be:a6:1a:1b:75:54:e8:5c:3d:b7:1a:4e:16:43:6f: 85:6f:fe:07:57:33:59:e5:22:ca:89:25:25:23:eb: a7:3a:f4:ad:20:36:a9:08:3b:32:24:48:46:0b:eb: de:31:f8:62:6c:e0:b5:df:70:86:25:37:f0:42:09: b0:b9:b8:32:bd:64:d2:0f:0d:33:f3:95:bf:1a:ce: 94:d9:9e:31:18:c8:84:1f:f2:6a:5e:a3:fb:8a:68: 44:6e:52:7b:84:1f:0a:31:7d:6c:03:03:67:1d:d6: 03:d6:b6:63:bd:d3:74:f8:b6:78:66:4a:f4:5f:90: 84:f6:90:f8:00:d9:79:14:c6:96:ae:48:05:0e:42: 65:7a:25:27:8a:a4:97:a6:24:8d:40:c5:94:aa:93: 69:3f:37:59:35:e0:13:b0:2a:5f:df:14:73:7f:ff: 6c:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:1F:78:41:12:ED:48:63:73:AE:B4:D6:6F:41:71:24:45:D5:8E:53 X509v3 Authority Key Identifier: keyid:B4:8E:40:73:B8:10:BC:F9:C7:94:81:9C:80:FD:E7:1D:53:F2:DE:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:4e:9f:c5:6b:c2:d4:ec:ba:7e:62:10:8d:d2:8a:4d:ce:29: b8:52:57:1b:ed:29:09:dc:be:ed:0f:26:0b:ff:17:f7:9c:83: a6:33:cc:73:e2:a1:e7:b5:3c:a1:a4:0e:da:8c:78:45:d1:1e: bf:c9:da:7c:a2:6c:ad:ff:58:01:f9:42:d7:05:aa:b7:52:3b: b1:6c:69:ad:61:c1:1c:5e:e3:d4:75:a4:3f:14:b5:bb:1f:76: c6:5a:41:12:8c:e7:35:5f:a3:30:e4:24:56:73:1b:9c:f3:e4: 9a:39:24:af:23:59:dc:18:5e:38:a9:df:4c:27:fe:4a:ed:60: ee:34:95:f8:ff:b7:4e:15:2c:bf:ea:d9:4e:37:d7:43:06:6c: 00:a3:8d:28:8c:67:9e:42:a7:3b:b9:86:d7:a7:7e:7f:9f:9d: 16:f4:51:34:98:dc:fb:a1:55:1c:1e:d3:4e:54:91:b2:97:cb: 23:80:3c:85:9d:06:84:ef:ee:5c:a8:98:69:4a:39:9f:d7:0d: 26:ff:65:d6:49:e6:e7:ec:4a:74:7c:e4:fc:0d:4e:6a:8f:46: 0d:2d:99:85:37:39:16:5c:9c:61:40:8d:69:28:51:65:bd:49: 59:3a:98:87:97:da:b4:b5:0d:e3:5e:f3:f0:97:ab:b1:3d:21: 11:83:a3:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBRQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjBDOTUxMTAvBgNVBAUTKEI0OEU0MDczQjgxMEJDRjlDNzk0ODE5QzgwRkRFNzFE NTNGMkRFMkMwHhcNMjQwNTAzMDExNTM4WhcNMjQwNTEwMDExNTM4WjAYMRYwFAYD VQQDEw02NjM0M2FiYS1mMzcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyrebA0X6T4CVTY95wUEbfHoDE3ybRJCDAEIv1/eTpXBgx5bbN8Wz2IHXWCzi qHSRSdrXfvnQ9I8xXtuNAqJQezVC9nz/2hvw56b4Alx2yE9d+jEGZz9+0M2+phob dVToXD23Gk4WQ2+Fb/4HVzNZ5SLKiSUlI+unOvStIDapCDsyJEhGC+veMfhibOC1 33CGJTfwQgmwubgyvWTSDw0z85W/Gs6U2Z4xGMiEH/JqXqP7imhEblJ7hB8KMX1s AwNnHdYD1rZjvdN0+LZ4Zkr0X5CE9pD4ANl5FMaWrkgFDkJleiUniqSXpiSNQMWU qpNpPzdZNeATsCpf3xRzf/9s0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG0feEES 7Uhjc6601m9BcSRF1Y5TMB8GA1UdIwQYMBaAFLSOQHO4ELz5x5SBnID95x1T8t4s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MEM5NS9ERTJGRjFGNEJB QzcxMUVCQUYyRTY4MTNDNEY5QUUwMi90STVBYzdnUXZQbkhsSUdjZ1AzbkhWUHkz aXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RJNUFjN2dRdlBuSGxJR2NnUDNuSFZQeTNpdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MEM5NS9ERTJGRjFGNEJBQzcxMUVCQUYyRTY4MTNDNEY5QUUwMi90STVBYzdnUXZQ bkhsSUdjZ1AzbkhWUHkzaXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjTp/Fa8LU7Lp+YhCN0opNzim4Ulcb7SkJ3L7tDyYL/xf3nIOmM8xz 4qHntTyhpA7ajHhF0R6/ydp8omyt/1gB+ULXBaq3UjuxbGmtYcEcXuPUdaQ/FLW7 H3bGWkESjOc1X6Mw5CRWcxuc8+SaOSSvI1ncGF44qd9MJ/5K7WDuNJX4/7dOFSy/ 6tlON9dDBmwAo40ojGeeQqc7uYbXp35/n50W9FE0mNz7oVUcHtNOVJGyl8sjgDyF nQaE7+5cqJhpSjmf1w0m/2XWSebn7Ep0fOT8DU5qj0YNLZmFNzkWXJxhQI1pKFFl vUlZOpiHl9q0tQ3jXvPwl6uxPSERg6N3 -----END CERTIFICATE-----Generated at Fri May 3 03:10:48 2024 by rpki-client on console-ams.rpki-client.org